OpenSSH 'ssh-keysign.c' Local Information Disclosure Vulnerability Network Vulnerability

Summary

OpenSSH is prone to a local information-disclosure vulnerability.

Impact

Local attackers can exploit this issue to obtain sensitive information. Information obtained may lead to further attacks.

Solution

Updates are available.

Insight

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

Affected

Versions prior to OpenSSH 5.8p2 are vulnerable.

Detection

Check the version.

References

http://www.openssh.com
http://www.openssh.com/txt/portable-keysign-rand-helper.adv
http://www.securityfocus.com/bid/65674

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-4327
CVSS Base Score: 2.1
AV:L/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Microsoft dotNET version grabber
IMAP Unencrypted Cleartext Logins
Misc information on News server
Becky Internet Mail Version Detection
Comodo Internet Security Race Condition Vulnerability-02

Take action and discover your vulnerabilities